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WHAT IS CLAIMED IS: 

1 1 . A method of providing financial responsibility for a transaction 

2 between a first trader certified by a first certificate authority and a second trader certified by a 

3 second certificate authority, wherein said transaction is based on a communication for a 

4 product communicated between said first trader and said second trader and wherein said first 

5 trader and said second trader have no common certificate authority, said method comprising: 

6 receiving at a trust bridge a certificate for said first trader issued by said first 

7 certificate authority; 

8 receiving at said tmst bridge a certificate for said second trader issued by said 

9 second certificate authority; 

10 providing validation of said first trader to said second trader by said trust 

^1 bridge; 

Of 2 providing financial responsibility for incorrect validation of said first trader to 

1J3 said second trader by said trust bridge. 

1 2. The method as described in claim 1 and fiirther comprising: 

^ 2 providing validation of said second trader to said first trader by said trust 

gi 3 bridge. 

£1 

1 3. The method as described in claim 2 and fiirther comprising: 

2 providing financial responsibility for incorrect validation of said second trader 

3 to said first trader by said trust bridge. 

1 4. The method as described in claim 1 wherein said first certificate 

2 authority provides financial responsibility for incorrect validation of said first trader to said 

3 trust bridge. 

1 5. The method as described in claim 4 wherein said second certificate 

2 authority provides financial responsibility for an incorrect validation of said second trader to 

3 said trust bridge. 

1 6. The method as described in claim 1 wherein said second certificate 

2 authority provides financial responsibility for an incorrect validation of said second trader to 

3 said trust bridge. 
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1 7. The method as described in claim 1 and further comprising: 

2 receiving at said trust bridge a certification revocation Ust for said first 

3 certificate authority; and 

4 receiving at said trust bridge a certification revocation list for said second 

5 certification authority. 

1 8. The method as described in claim 7 and further comprising: 

2 compiUng a master certification revocation Ust comprising said certificate 

3 revocation list for said first certificate authority and said certificate revocation list for said 
second certificate authority. 

m 1 9. The method as described in claim 8 and further comprising: 

§j2 publishing said master certificate revocation Ust to a participating hub. 

10. The method as described in claim 1 and further comprising: 

ill 

gl 2 providing a certificate validation authority at said trust bridge. 

~; 1 11. The method as described in claim 1 0 and further comprising: 

2 issuing a trust bridge practice statement so as to define liabiUty limits of said 

3 trust bridge. 

1 12. The method as described in claim 1 and further comprising: 

2 obtaining a certificate revocation list for said first certificate authority; 

3 obtaining a certificate revocation list for said second certificate authority; 

4 creating a master certificate revocation list; 

5 distributing a master certificate revocation Ust to a participating hub; 

6 wherein said providing financial responsibiUty comprises providing* financial 

7 responsibility for said distributed master certificate revocation list. 
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1 13. The method as described in claim 1 wherein said providing financial 

2 responsibility for incorrect validation of said first trader comprises basing said financial 

3 responsibility on the validity of a certificate of said first trader. 

1 14. The method as described in claim 1 and further comprising: 

2 providing a trust bridge practice statement for an entity which uses said trust 

3 bridge so as to define financial responsibility limits of said trust bridge. 

1 15. The method as described in claim 14 wherein said first certificate 

2 authority provides a certification practice statement for an entity which uses said first 

3 certificate authority so as to define financial responsibility limits of said first certificate 
CI4 authority. 

o! 

C. j 1 1 6. A method of establishing authentication between at least a first party 

%12 and a second party, said method comprising: 

y n 

Ci3 certifying said first party with a first certificate authority; 

5| 4 certifying said second party with a second certificate authority different from 

5 said first certificate authority; 

01 

6 certifying a third party with said first certificate authority; 

7 certifying said third party with said second certificate authority; 

8 conveying a message from said first party to said third party such that said 

9 third party can authenticate said message from said first party; 

1 0 conveying said message from said third party to said second party such that 

1 1 said second party can authenticate said message from said third party; 

12 allowing said first certification authority to provide financial responsibility for 

13 an incorrect certification of said first party; and 

14 providing financial responsibility by said third party to said second party for 

1 5 incorrect validation of a certificate issued by said first party. 
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1 17. The method as described in claim 16 and further comprising: 

2 receiving at said third party a certificate revocation list for said first 

3 certification authority; 

4 receiving at said third party a certificate revocation list for said second 

5 certification authority; 

6 utilizing said certificate revocation list for said first certification authority and 

7 said certificate revocation list for said second certification authority to compile a master 

8 certificate revocation list. 

^.1 1 8. The method as described in claim 1 6 and fiirther comprising: 

0|2 providing a trust bridge practice statement for an entity which uses said third 

y|3 party so as to define financial responsibility limits of said third party to said entity. 

1 1 9. A method of providing non-repudiation of a communication from a 

L=l 

^ 2 first trader certified by a first certification authority to a second trader certified by a second 

m 3 certification authority, wherein said communication is for a product and wherein said first 

4 trader and said second trader have no common certification authority, said method 

CI 5 comprising: 

6 receiving certification of a trust bridge from said first certificate authority; 

7 receiving certification of said trust bridge from said second certificate 

8 authority; 

9 receiving at said trust bridge said commxmication from said first trader to said 

1 0 second trader via said trust bridge; 

1 1 establishing non-repudiation of said communication from said first trader to 

12 said second trader with said trust bridge. 

1 20. The method as described in claim 19 wherein said establishing non- 

2 repudiation of said commxmication comprises: 
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3 conveying said commxxnication to said second party with a digital signature of 

4 said first trader and a digital signature of said trust bridge. 

1 21. The method as described in claim 20 wherein said establishing non- 

2 repudiation of said communication comprises: 

3 receiving at said trust bridge said conmiunication with a digital signature of 

4 said second trader. 

1 22. The method as described in claim 19 wherein said establishing non- 

2 repudiation of said communication comprises: 

^^^3 receiving at said trust bridge an origination time stamp coupled to said 

^11 4 communication. 

Ill 1 23. The method as described in claim 19 wherein said establishing non- 

2 repudiation of said communication comprises: 

^ 3 receiving at said trust bridge a delivery time stamp for said communication. 

S| 1 24. The method as described in claim 19 wherein said establishing non- 

2 repudiation of said communication comprises: 

!=-• 

3 storing a copy of said communication at said trust bridge. 

1 25. The method as described in claim 24 wherein said establishing non- 

2 repudiation of said conamunication comprises: 

3 storing a digital signatixre of said first trader coupled to said copy of said 

4 communication. 

1 26. A method of establishing a trust between at least a first party and a 

2 second party, said method comprising: 

3 certifying said first party with a first certificate authority; 

4 certifying said second party with a second certificate authority different from 

5 said first certificate authority; 
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certifying a third party with said first certificate authority; 



7 certifying said third party with said second certificate authority; 

8 conveying a message from said first party to said third party such that said 

9 third party can authenticate said message from said first party; 

10 conveying said message from said third party to said second party such that 

1 1 said second party can authenticate said message from said third party; 

12 utilizing said third party as a trust bridge to establish a trust relationship 

13 between said first party and said second party. 

li 1 27. A method of establishing authentication between at least a first party 

0^2 and a second party, said method comprising: 

ui 3 certifying said first party with a first certificate authority; 

4 certifying said second party with a second certificate authority different from 

CI 5 said first certificate authority; 

£i 6 certifying a third party with said first certificate authority between said first 

S-' 7 party and said third party; 

01 8 certifying said third party with said second certificate authority; 

p[ 9 conveying a message from said first party to said third party, such that said 

10 third party can authenticate said message from said first party; 

1 1 conveying said message from said third party to said second party, such that 

12 said second party can authenticate said message from said third party. 

1 28. A computer readable medium having computer executable instructions 

2 for performing a method of establishing a trust between at least a first party and a second 

3 party, said method comprising: 

4 receiving certification at a computer from a first certificate authority, wherein 

5 said first certificate authority also certifies said first party; 

6 receiving certification at said computer by a second certificate authority, 

7 wherein said second certificate authority also certifies said second party; 
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8 receiving a message at said computer from said first party such that said 

9 message from said first party can be authenticated; 

10 conveying said message to said second party from said computer such that 

1 1 said second party can authenticate said message; 

12 utihzing said computer as a trust bridge between said first party and said 

13 second party so as to estabhsh a trust relationship between said first party and said second 

14 party. 
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